Alternatives and similar repositories for KubeForenSys

Users that are interested in KubeForenSys are comparing it to the libraries listed below

• montysecurity / YaraMonitor
  Framework for Monitoring File Ingestion Source for Yara Matches
  ☆50Updated 8 months ago
• infosecB / Rulehound
  An index of publicly available and open-source threat detection rulesets.
  ☆129Updated 7 months ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆185Updated 10 months ago
• 0xAIDR / AIDR-Bastion
  A comprehensive GenAI protection system designed to protect against malicious prompts, injection attacks, and harmful content. System inc…
  ☆94Updated last month
• VirtueSecurity / IAMhounddog
  A tool to help pentesters quickly identify privileged principals and second-order privilege escalation opportunities in unfamiliar AWS ac…
  ☆133Updated this week
• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆82Updated this week
• Yamato-Security / suzaku
  Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.
  ☆155Updated 3 weeks ago
• wiz-sec-public / wiz-research-iocs
  ☆45Updated 3 months ago
• elastic / SWAT
  ☆166Updated last month
• 100DaysofYARA / 2025
  Rules shared by the community from 100 Days of YARA 2025
  ☆37Updated 9 months ago
• Permiso-io-tools / capiche
  ☆18Updated last month
• FalconForceTeam / dAWShund
  Putting a leash on naughty AWS permissions
  ☆132Updated 2 months ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Updated last year
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Updated last year
• relayhawk / twilio-security-scanner
  ☆22Updated 8 months ago
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆107Updated last year
• offensive-actions / azure-storage-reverse-shell
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆37Updated last year
• Permiso-io-tools / azure-activity-log-axe
  Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…
  ☆32Updated last year
• Permiso-io-tools / RansomWhen
  RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…
  ☆58Updated 9 months ago
• infosecn1nja / TTPMapper
  TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…
  ☆46Updated 4 months ago
• gladstomych / AHHHZURE
  AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…
  ☆106Updated last year
• SygniaLabs / Mirage
  ☆75Updated 8 months ago
• thinkst / defending-off-the-land
  Assortment of scripts and tools for our Blackhat EU 2024 talk
  ☆100Updated 9 months ago
• AttackIQ / DetectIQ
  ☆116Updated 5 months ago
• yaaras / honeybee
  Create honeypots for cloud environments
  ☆103Updated last month
• tsale / EDR-Telemetry-Website
  ☆74Updated this week
• ReversecLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆142Updated 10 months ago
• 0xAnalyst / Project-Lost
  Living Off Security Tools
  ☆52Updated last year
• Escape-Technologies / API-Threat-Matrix
  A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.
  ☆43Updated last year
• 8ales / Azure-AppHunter
  Azure AppHunter is an open-source tool created for security researchers, red teamers and defenders to help them identify excessive privil…
  ☆96Updated 2 months ago